Sonar is a security researcher's Swiss army knife for finding and exploiting vulnerabilities that require out-of-band interactions
☆21Mar 11, 2026Updated last month
Alternatives and similar repositories for sonar
Users that are interested in sonar are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆29Mar 26, 2022Updated 4 years ago
- GraphQL application security testing helper☆20May 22, 2023Updated 2 years ago
- Bundle of wordlists for brute-forcing subdomains (World + RUSSIA based).☆68Jun 16, 2018Updated 7 years ago
- A list of checks with tips for analyzing the security of Android applications☆14Nov 19, 2019Updated 6 years ago
- RSEScan is a command-line utility for interacting with the RSECloud. It allows you to fetch subdomains and IPs from certificates for a gi…☆17Jun 7, 2024Updated last year
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Various wordlists for bruteforce☆36Nov 9, 2021Updated 4 years ago
- ☆44Aug 5, 2022Updated 3 years ago
- Proof of Concept example for abusing Process Hacker 2 (v2.39.124)☆23Oct 30, 2024Updated last year
- Check bitrix vulnerabilities☆92Jan 22, 2024Updated 2 years ago
- A python library to interact with Pwndoc instances for pentest reports generation☆24May 19, 2025Updated 10 months ago
- Yet Another Wordlists Repo☆130Jan 6, 2022Updated 4 years ago
- 浏览器XSS 过滤器Fuzzing 框架 (browser xss aduit fuzzing framework )..☆15Sep 13, 2016Updated 9 years ago
- The Burp extension to check JWT (JSON Web Tokens) for using keys from known from public sources☆140Sep 21, 2020Updated 5 years ago
- Oyedata is a tool to perform OData assessments☆13Aug 3, 2012Updated 13 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆37Apr 6, 2026Updated last week
- Here you can find writeups from various CTFs that I've participated in.☆12Jul 30, 2023Updated 2 years ago
- API for Asset Service☆14Aug 15, 2024Updated last year
- Python utility to takeover domains vulnerable to AWS NS Takeover☆86Feb 2, 2023Updated 3 years ago
- SAP penetration testing Web and network cheatsheet☆17May 15, 2022Updated 3 years ago
- Dynamic Check Challenges with docker-compose for CTFd V3.4.0+.☆22Mar 26, 2022Updated 4 years ago
- Bash Enumeration Script☆18Oct 18, 2019Updated 6 years ago
- gruvbox dark theme for tmux☆13Aug 25, 2021Updated 4 years ago
- This automation protect against subdomain takeover on AWS env which also send alerts on slack.☆11Aug 1, 2021Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- If you're using Burp Suite Community Edition and want to supercharge your workflow with some powerful AI assistance – without needing Bur…☆42Apr 16, 2025Updated 11 months ago
- A vulnerable application exposing Spring Boot Actuators☆123Feb 25, 2019Updated 7 years ago
- Tool for finding URLs, paths, secrets and generating raw HTTP requests and OpenApi specifications from config files and annotations used …☆249Dec 9, 2025Updated 4 months ago
- ☆19Jan 1, 2021Updated 5 years ago
- Uzbek cyrillic/latin alphabetic, upper/lower/capital-case, name/surname/patronymic wordlists (dictionaries) and their combinations☆13Aug 4, 2022Updated 3 years ago
- ☆14Aug 10, 2022Updated 3 years ago
- PoC for distributed NTP reflection DoS (CVE-2013-5211)☆10Oct 4, 2019Updated 6 years ago
- Hybrid Botnet over TOR targeting Linux machines☆11Aug 1, 2021Updated 4 years ago
- A Nuclei security scanning server based on MCP (Model Control Protocol), providing convenient vulnerability scanning services.一个基于 MCP (M…☆21Aug 24, 2025Updated 7 months ago
- Wordpress hosting with auto-scaling - Free Trial • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- NTLMRelay for MS Exchange☆11Nov 13, 2018Updated 7 years ago
- ☆41Apr 23, 2025Updated 11 months ago
- GitLab CI security tools runner☆18Feb 3, 2023Updated 3 years ago
- Generates a DEBUG PIN for flask applications based on Werkzeug☆19Nov 22, 2023Updated 2 years ago
- a burp extension for dynamic payload generation to detect injection flaws (RCE, LFI, SQLi), creates access matrix based user sessions to …☆30Oct 21, 2025Updated 5 months ago
- ☆12Feb 4, 2025Updated last year
- AES-GEM (AES Galois Extended Mode) implementation.☆13Feb 9, 2026Updated 2 months ago